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AMENDMENTS TO THE CLAIMS : 

Please amend the claims as indicated below. This listing of claims will replace all prior 
versions and listings of claims in the application. 
1.-23. (Cancelled) 

24. (Currently Amended) A user authentication method based on the use of 
identification biometric techniques comprising an enrolment step and a verification step, said 
enrolment step comprising the steps of: 

generating, using an image processor, a reference biometric template from a first 
biometric image of a user to be authenticated; 

splitting, using a computer, said reference biometric template into a first and a second 
reference biometric template portion; 

enciphering, using the computer, said first and second reference biometric template 
portions; and 

storing each one of said first and second reference biometric template portions into a 
different memory a 

wherein said verification step comprises the steps of: 

generating a live template from a second biometric image of said user to be 

authenticated; 

enciphering said live template; and 

transmitting said live template and said second reference biometric template 
portion to a device . 
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25. (Currently Amended) The method according to claim 24, wherein said step of 
storing each one of said reference biometric template portions into a different memory comprises 
the steps of: 

transmitting said first reference biometric template portion from a first system to [[a]] 
said device, said first system operating in said enrolment step; 

storing said first reference biometric template portion into a memory of said device, said 
device operating in said verification step; 

transmitting said second reference biometric template portion from said first system to a 
second system, said second system operating in said verification step; and 

storing said second reference biometric template portion into a memory of said second 

system. 

26. (Canceled) 

27. (Currently Amended) The method according to claim [[26]] 24, wherein said 
verification step comprises the steps of: 

deciphering said live template and said second reference biometric template portion; 
recomposing said reference biometric template from said first and second reference 
biometric template portions; and 

comparing said recomposed reference biometric template with said live template. 

28. (Previously Presented) The method according to claim 27, wherein said 
verification step comprises the steps of: 

sending a result of said comparison to said second system; and 
authenticating or not authenticating said user depending on said result. 
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29. (Previously Presented) The method according to claim 25, wherein said step of 
splitting said reference biometric template into a first and a second reference biometric template 
portion comprises the step of: 

destroying said biometric template performed by said first system. 

30. (Previously Presented) The method according to claim 25, wherein said step of 
enciphering said first and second reference biometric template portions comprises the steps of: 

storing a first and a second key and a related digital certificate into a memory of said first 
system, said first and second keys being respectively a public key and a private key associated 
with said first system; 

storing a first and a second key and a related digital certificate into said memory of said 
device, said first and second keys being respectively a public key and a private key associated 
with said user to be authenticated; 

signing said first and second reference biometric template portions with said private key 
of said first system; and 

enciphering said first and second reference biometric template portions with said public 
key of said user to be authenticated. 

3 1 . (Currently Amended) The method according to claim [[26]] 24, wherein said step 
of transmitting said live template and said second reference biometric template portion to said 
device comprises the steps of: 

generating an aleatory value associated with the current data verification step, said 
aleatory value guaranteeing the authenticity of said current data verification step; 
signing and enciphering said aleatory value; and 
transmitting said aleatory value to said device. 
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32. (Previously Presented) The method according to claim 30, wherein said step of 
enciphering said comparison biometric template comprises the steps of: 

storing a first and a second key and a related digital certificate into said memory of said 
second system, said first and second keys being respectively a public key and a private key 
associated with said second system; 

signing said live template with said private key of said second system; and 
enciphering said live template with said public key of said user to be authenticated. 

33. (Previously Presented) The method according to claim 3 1 , wherein said step of 
deciphering said live template and said second reference biometric template portion comprises 
the steps of: 

deciphering a signature and validity of said aleatory value; 

deciphering said second reference biometric template portion with said private key of 
said user to be authenticated; 

verifying a signature of the deciphered second reference biometric template portion; 
deciphering said live template with said private key of said user to be authenticated; and 
verifying a signature of the deciphered live template. 

34. (Previously Presented) The method according to claim 28, wherein said step of 
sending a result of said comparison to said second device comprises the steps of: 

generating a message containing said result; and 
enciphering said message. 

35. (Previously Presented) The method according to claim 24, wherein said 
identification biometric techniques comprise at least one biometric identification technique of the 
type selected from: 
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face recognition, fingerprints, hand prints, voice templates, retinal images, and 
calligraphic samples. 

36. (Previously Presented) The method according to claim 25, wherein said first and 
second systems are respectively a data enrolment system and a data verification system and said 
device is a data carrier. 

37. (Previously Presented) The method according to claim 24, wherein said step of 
splitting said reference biometric template comprises the step of: 

splitting said reference biometric template into a plurality of reference biometric template 
portions, at least some of said reference biometric template portions being used to recompose 
said reference biometric template. 

38. (Currently Amended) A user authentication architecture based on the use of 
biometric identification techniques comprising: 

at least one data enrolment system for generating a reference biometric template from a 
first biometric image of a user to be authenticated, said data enrolment system comprising a host 
computer to split said reference biometric template into a first and a second reference biometric 
template portion and for signing and enciphering said first and second reference biometric 
template portions; 

at least one portable data carrier associated with said user to be authenticated, said data 
carrier comprising a memory for storing said first signed and enciphered reference biometric 
template portion; and 

at least one data verification system comprising a memory for storing said second signed 
and enciphered reference biometric template portion! 
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wherein said data carrier comprises a microprocessor comprising a processing logic for 
deciphering said first and second reference biometric template portions, verifying the signature 
and recomposing said reference biometric template from said first and second deciphered 
reference biometric template portions, and 

wherein said microprocessor comprises a comparing logic to compare said recomposed 
reference biometric template with a live template generated by a second biometric image of the 
user to be authenticated, said second biometric image of the user to be authenticated being 
generated by the data verification system . 

39. - 40. (Canceled) 

41 . (Currently Amended) A portable data carrier associated with a user that has to be 
authenticated through a user authentication architecture, said data carrier comprising! 

a microprocessor comprising a memory for storing a first reference biometric template 
portion divided from a reference biometric template received from associated with said user to be 
authenticated, said first reference biometric template portion being signed and enciphered, 

said portable data carrier being adapted to receive as input, from said user authentication 
architecture, a second reference biometric template portion divided from said reference biometric 
template and a live template associated with said user to bo authenticat e d , said second reference 
biometric template portion and said live template being signed and enciphered, said 
microprocessor further comprising: 

a processing logic for deciphering said first and second reference biometric template 
portions and for recomposing th e refrom said reference biometric template from deciphered first 
and second reference biometric template portions associated with said us e r to bo authenticat e d ; 
and 
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a comparing logic for comparing said reference biometric template recomposed with said 
live template and sending a result of said comparison to said user authentication architecture. 

42. (Previously Presented) The portable data carrier according to claim 41 , 
comprising a substrate whose sizes are substantially rectangular. 

43. (Previously Presented) The portable data carrier according to claim 41 , wherein 
said data carrier is an access card or a credit card or a debit card or an identification card or a 
smart card or a SIM card. 

44. (Currently Amended) A data verification system comprising! 

an electronic device and a portable data carrier associated with a user that has to be 
authenticated, said data carrier being adapted to store a first reference biometric template portion 
divided from a reference biometric template received from associat e d with the user to be 
authenticated, said first reference biometric template portion being signed and enciphered; 

[[said]] an electronic device comprising: 

a memory adapted to store a second reference biometric template portion divided from 
said reference biometric template associated with th e user to be authenticated , complementary to 
said first reference biometric template portion, said second reference biometric template portion 
being signed and enciphered; and 

an image acquiring and processing device for generating a live template; 

said electronic device being adapted to: 

encipher and sign said live template, 

transmitting transmit said second reference biometric template portion and said 
live template to said portable data carrier^ and 
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authenticating authenticate said user depending on a result of a comparison 
performed by said data carrier between said live template and [[a]] said reference biometric 
template of said user to b o auth e nticated , said reference biometric template being rebuilt by using 
said first and second reference biometric template portions. 

45. (Previously Presented) A data verification system comprising an electronic device 
and, a portable data carrier associated with a user that has to be authenticated, said data carrier 
being adapted to store a first reference biometric template portion associated with the user to be 
authenticated, said first reference biometric template portion being signed and enciphered; 

said electronic device comprising: 

a first memory adapted to store a second reference biometric template portion 
associated with the user to be authenticated, said second reference biometric template portion 
being signed and enciphered; 

at least a second memory adapted to store at least a third reference biometric 
template portion associated with the user to be authenticated, said third reference biometric 
template portion being signed and enciphered, wherein said first, second and at least third 
reference biometric template portions are such that a reference biometric template can be 
recomposed from a subset of at least two of said first, second, and at least third reference 
biometric template portions; and 

an image acquiring and processing device for generating a live template; 

said electronic device being adapted to encipher and sign said live template, transmitting 
said second reference biometric template portion and said live template to said portable data 
carrier and authenticating said user depending on a result of a comparison performed by said data 
carrier between said live template and a reference biometric template of said user to be 
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authenticated, said reference biometric template being rebuilt by using said first and second 
reference biometric template portions. 

46. (Previously Presented) A non-transitory computer readable storage medium 
encoded with a computer program that can be loaded into a memory of at least one electronic 
processor, the computer program comprising program codes for performing the steps of the 
method according to claim 24, when said computer program is executed by said at least one 
electronic processor. 
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